AppArmor: Add ability to load extended policy Add the base support for the new policy extensions. This does not bring any additional functionality, or change current semantics. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Kees Cook <kees@ubuntu.com>

commit: ad5ff3db53c68c2f12936bc74ea5dfe0af943592 [log] [tgz]
author: John Johansen <john.johansen@canonical.com> Thu Feb 16 07:07:53 2012 -0800
committer: John Johansen <john.johansen@canonical.com> Wed Mar 14 19:09:03 2012 -0700
tree: 72d9ac19fdca90d283a05f444870847ce5fb9f0c
parent: 57fa1e18091e66b7e1002816523cb218196a882e [diff] [blame]
diff --git a/security/apparmor/include/apparmor.h b/security/apparmor/include/apparmor.h
index 248c408..40aedd9 100644
--- a/security/apparmor/include/apparmor.h
+++ b/security/apparmor/include/apparmor.h

@@ -19,6 +19,19 @@
 
 #include "match.h"
 
+/*
+ * Class of mediation types in the AppArmor policy db
+ */
+#define AA_CLASS_ENTRY		0
+#define AA_CLASS_UNKNOWN	1
+#define AA_CLASS_FILE		2
+#define AA_CLASS_CAP		3
+#define AA_CLASS_NET		4
+#define AA_CLASS_RLIMITS	5
+#define AA_CLASS_DOMAIN		6
+
+#define AA_CLASS_LAST		AA_CLASS_DOMAIN
+
 /* Control parameters settable through module/boot flags */
 extern enum audit_mode aa_g_audit;
 extern bool aa_g_audit_header;
commit	ad5ff3db53c68c2f12936bc74ea5dfe0af943592	[log] [tgz]
author	John Johansen <john.johansen@canonical.com>	Thu Feb 16 07:07:53 2012 -0800
committer	John Johansen <john.johansen@canonical.com>	Wed Mar 14 19:09:03 2012 -0700
tree	72d9ac19fdca90d283a05f444870847ce5fb9f0c
parent	57fa1e18091e66b7e1002816523cb218196a882e [diff] [blame]